GCVE - cpe:2.3:a:phpjabbers:time_slots_booking

Approved changes feed: RSS · Atom

cpe:2.3:a:phpjabbers:time_slots_booking_calendar:4.0:*:*:*:*:*:*:*

part: a version: 4.0 update: *

Vendor	Phpjabbers (`2f919538-31c8-5cbb-b18c-c6079deaeb0d`)
Product	Time Slots Booking Calendar (`8335c1f6-ad2e-5ca6-9970-3981e5d70336`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from NVD CPE 2.0 feed

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2023-48833`	vulnerable	2026-06-03 14:53:19.920444	Details available A lack of rate limiting in pjActionAJaxSend in Time Slots Booking Calendar 4.0 allows attackers to cause resource exhaustion. Published: 2023-12-07T00:00:00.000Z Updated: 2024-08-02T21:46:29.084Z Open on db.gcve.eu Reference links https://www.phpjabbers.com/time-slots-booking-calendar/ http://packetstormsecurity.com/files/176042	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2023-48828`	vulnerable	2026-06-03 14:53:19.919578	Details available Time Slots Booking Calendar 4.0 is vulnerable to Multiple Stored Cross-Site Scripting (XSS) issues via the name, plugin_sms_api_key, plugin_sms_country_code, calendar_id, title, country name, or customer_name parameter. Published: 2023-12-07T00:00:00.000Z Updated: 2024-08-02T21:46:28.516Z Open on db.gcve.eu Reference links https://www.phpjabbers.com/time-slots-booking-calendar/ http://packetstormsecurity.com/files/176037	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2023-48827`	vulnerable	2026-06-03 14:53:19.919316	Details available Time Slots Booking Calendar 4.0 is vulnerable to Multiple HTML Injection issues via the name, plugin_sms_api_key, plugin_sms_country_code, calendar_id, title, country name, or customer_name parameter. Published: 2023-12-07T00:00:00.000Z Updated: 2024-08-02T21:46:28.281Z Open on db.gcve.eu Reference links https://www.phpjabbers.com/time-slots-booking-calendar/ http://packetstormsecurity.com/files/176036	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2023-48826`	vulnerable	2026-06-03 14:53:19.918954	Details available Time Slots Booking Calendar 4.0 is vulnerable to CSV Injection via the unique ID field of the Reservations List. Published: 2023-12-07T00:00:00.000Z Updated: 2024-08-02T21:46:28.284Z Open on db.gcve.eu Reference links https://www.phpjabbers.com/time-slots-booking-calendar/ http://packetstormsecurity.com/files/176034	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.

PHPJabbers Time Slots Booking Calendar 4.0

PURL mappings

Vulnerability references

Contribute